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(57) ABSTRACT 

A method, apparatus and article of manufacture for a 
computer- implemented method of delayed secure data 
retrieval. Actual data entities are not packed into an infor- 
mation entity. Rather, the data entities are only retrieved 
upon request. Instead, the information entity contains a 
delayed retrieval description. The data entities which are 
eventually to be retrieved are encrypted to enforce the terms 
and conditions imposed upon accessing the entities. The 
encryption or content key used to encrypt the data item is 
determined when the information entity is packed and is 
stored in the crypto lope in an encrypted form. Finally, the 
content key is only stored in the cryptolopc. The publisher 
does not need to maintain a database to store content keys 
and information regarding which content key has been used 
to encrypt which data entity. 

18 Claims, 3 Drawing Sheets 



108 



END 
USER 



INFORMATION 
ENTITY 
PLAYER 



106 




.102 



STORE 



104 



STORE 
104 



07/09/2003, EAST Version: 1.03.0002 



U.S. Patent May 27, 2003 Sheet 1 of 3 



US 6,571,337 Bl 





07/09/2003, EAST Version: 1.03.0002 



U.S. Patent May 27, 2003 Sheet 2 of 3 US 6,571,337 Bl 



FIGURE 2 



SELECT CONTENT ENCRYPTION KEY 



202 



ENCRYPT CONTENT ENCRYPTION KEY 



~ 204 



CREATE INFORMATION ENTITY 



206 



SEND INFORMATION ENTITY TO INFORMATION ENTITY 

PLAYER 



208 



OPEN INFORMATION ENTITY AND REQUEST DATA ENTITY — 210 



SEND REQUEST TO CONTENT SERVER 



212 



USE DELAYED RETRIEVAL DESCRIPTION FROM INFORMATION 
ENTITY TO RETRIEVE DATA ENTITY 



I 



214 



SEND DATA ENTITY TO USER 



— 216 



07/09/2003, EAST Version: 1.03.0002 



U.S. Patent May 27, 2003 Sheet 3 of 3 



US 6,571,337 Bl 



FIGURE 3 



INFORMATION ENTITY 



302 



CONTENT KEY 



304 



DELAYED 
RETRIEVAL 
DESCRIPTION 



306 



DIGITAL SIGNATURE 



308 



UNIVERSAL RESOURCE 
LOCATOR 



310 



07/09/2003, EAST Version: 1.03.0002 



US 6,571,337 Bl 
1 2 

DELAYED SECURE DATA RETRIEVAL while the public key is known to the public. A text encrypted 

by a private key can only be decrypted by its corresponding 
PROVISIONAL APPLICATION public key. A message digest is a result from a one-way 

... function of a piece of data (also called a hash function). It 
This application claims the benefit of U.S. Provisional fe used to authenticate the piece of data in that if the data is 
Application No. 607090,498, entitled, "Delayed Secure Data changed, it will have a different message digest. Therefore, 
Retrieval," filed on Jun. 24, 1998, by Cun Xiao, which is wncn a data pac kage with a digital signature is sent from A 
incorporated by reference herein. to B, B can use A's public key to decrypt the signature to 

make sure that the package is from A and that nobody has 
BACKGROUND OF THE INVENTION changed the content. The data items in the cryptolope can 

1. Field of the Invention 10 havc tenns 111(1 conditions, such as pay $1.00 for viewing 

. enter a password or present a digital certificate, in which 

This invention relates in general to an electronic library case> the data items ^ encry p te d. Thus, the user must 

network, and, in particular, to delayed secure data retrieval indirectly obtain the corresponding decryption key using a 

over an electronic library network. cryptolope player, a special opener application, to unlock the 

2. Description of the Related Art 15 data items. When an end-user receives and then opens the 
With the advent of network technologies, such as the cryptolope using the cryptolope player, the end user must 

Internet and the World Wide Web (WWW), new systems ^en P resent information to meet the terms and conditions to 
such as digital libraries have appeared. These libraries a J lcarancc ^ cl^rancx center can be mn by the 
contain a wide variety of information in various forms stored mfonnatjon sur^her an authorized agent of the supplier, or 
as digital data entities. Such libraries require the manage- 20 a ™^ ^ ^ P"* who P™** * e clear ? n S 
meat of the digital contents of the library and of content ™ e clearance center must venfy that the user has 
distribution. Often, the digital entities must be distributed met * e terms and _ conditions before providing the user with 
over networks, between severs, and to client machines. The *»» decryption key. The clearance center then tells the 
wide distribution of the digital contents requires protection cryptolope player used by the end user to open he crypto- 
of the contents, i.e. limiting who gets access to the data 25 lo P e - ™ e cryptolope player men oper^ me cryptolope and 
entities and how the data entities can be accessed. For *e program can then control actions which the end user is 
example, terms and conditions may be imposed, which must aUcwcd to ^ donn oa mc data enUt * C S" ^ savc or 
be satisfied before a user can obtain access to the data P nat> 

entities. Further, the integrity and authenticity of data enti- ^ "° d « this traditional cryptolope scheme, the encrypted 
ties must be maintained. 30 data cnuties arc P ackcd m mc cryptolope itself along with 

T . ... . . t „ , m . , the encryption key, encrypted by a key of the clearance 

In other words, there must be an access control mecba- J f J J 

u- u r \ o.- „^t; t ;„. Cnr) i,„ ,w center. However, this cryptolope scheme presents a problem 

nism which limits access to the data entities, rurther, there * ■'■r . *L ....... . • . 

t , .i j e . .... with modem day data entities. Such data entities, which may 

must be a secure method of transmittmg the data entities. t J .. . , , ; 

. , , & , represent video, audio, software, etc. can be quite large. 

To provide such protection, past systems have used 35 Xransmission of such ^ data entities can ^ very slow> 
schemes such as secured socket layer (SSL) transmission. and ^ me ffi c i en cy is especially evident when 

Under (his scheme, the two parties to the transnussion agree ^ ^ ^ in only a portion of the data entity, 

on one session key, which is used from then on to encrypt Qr ±e ^ decide ^ he/&he ^ nQt interested „, My of 
the data entity. Under such a scheme, both parties are ^ data ^ ^ ^ 
trusted. However, this scheme may not be practical when ^ 

dealing with a publisher of information, maintaining a SUMMARY OF THE INVENTION 

digital library which can be accessed by many unknown Xo overcome the limitations in the prior art described 
users and when dealing with rights associated with the above, and to overcome other limitations that will become 
information in the library, such as copyright protection. A apparent upon reading and understanding the present 
publisher will want to limit access to data entities to those 45 specification, the present invention discloses a method, 
users who have met imposed conditions, without having to apparatus and article of manufacture for a computer- 
estabbsh a session key for each user, which can be cumber- implemented method of delayed secure data retrieval 
some. scheme. 

Another scheme for protecting the distribution of data i a accordance with the present invention, the actual data 
entities is for an information supplier, e.g. a publisher, to 50 entities are not packed into the cryptolope itself. Rather, the 
distribute data entities in encrypted form along with an da t a entities are only retrieved upon request. Instead, the 
encryption key, such as with IBM Corporation's CRYPTO- cryptolope, in accordance with the present invention, is an 
LOPE scheme. In this manner, information can be distrib- information entity, containing, inter alia, a delayed retrieval 
uted freely using any means without loss of protection. description, used to retrieve a data entity when requested. 
Under this scheme, a clearance center must verify that the 55 Further, the data entities which are eventually to be retrieved 
user has satisfied the criteria to receive the data entity are encrypted to enforce the terms and conditions imposed 
according to the terms and conditions (T&Cs) associated upon accessing the entities. Also; the encryption or content 
with that data entity (e.g., by paying a fee), before providing k cy> used to encrypt the data item is determined when the 
the user with the corresponding decryption key. Any busi- cryptolope, or information entity, is packed and is stored in 
ness transaction (e.g. f payment) can be handled by yet 60 the cryptolope in an encrypted form. Only the publisher can 
another party. unlock the content key. Therefore the end user cannot unlock 

The cryptolope scheme will now be described in further the content in any way without satisfying the terms and 
detail. The cryptolope is a secure data container which conditions imposed. Finally, the content key is only stored in 
contains a collection of data items, and is digitally signed, so the cryptolope. Thus, the publisher does not need to maintain 
that the container is tamper detectable. A digital signature is 65 a database to store content keys and information regarding 
an encryption of a message digest by a private key from a which content key has been used to encrypt which data 
public and private key pair. The private key is kept secretly, entity. 
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Thus, an object of the present invention is to avoid the secure data retrieval over the library network using standard 

unnecessary transmission of large volumes of data. programming and/or engineering techniques to produce 

Another object of the present invention is to separate software, firmware, hardware, or any combination thereof, 

delivery of an information entity and the real content, the The term "article of manufacture" (or alternatively, "com- 

data entities. This allows the initial transmission of infor- 5 puter program product") as used herein is intended to 

mation about the data, i.e. description data or meta data, encompass a computer program accessible from any 

without having to transmit the data entity itself. computer-readable device, carrier, or media. Of course, 

Another object of the present invention is to reduce key skilled in the recognize many modifications 

management and storage requirements by eliminating the ma V * ™f 10 th * configuration without departing from 

need to maintain a database containing content keys and 10 me of P reseot invention, 

information regarding how the keys are related to the data Those skilled in the art will recognize that the exemplary 

cnt j t y environment illustrated in FIG. 1 is not intended to limit the 

present invention. Indeed, those skilled in the art will 

BRIEF DESCRIPTION OF THE DRAWINGS recognize that other alternative hardware environments may 

The above objects and advantages of the present invention 15 be used without departing from the scope of the present 

will become more apparent by describing in detail preferred invention. 

embodiments thereof with reference to the attached draw- (□ accordance with the present invention cryptolopes or 

ings in which like reference numbers represent correspond- information entities are used to initially transmit meta data, 

ing parts throughout: i.e. descriptive information about the data, rather than the 

FIG. 1 illustrates an exemplary hardware environment in 20 data itself. The meta data contains information regarding 

which the present invention may be practiced. where the data can be obtained and how to encrypt the data 

FIG. 2 illustrates a flowchart showing the steps carried out before its transmission. Two levels of security are provided 

in implementing the present invention. m accordance with the present invention when terms and 

FIG. 3 illustrates an information entity and its contents in 25 conditions are applied to a data item. First, the data item, 

accordance with the present invention. rct f mc *« me °° nto J * "J 1 out m a f cnc ^ fi ? m 

r only when requested. Second, the content encryption key 

DETAILED DESCRIPTION OF THE used to encrypt the data is itself encrypted and stored in the 

PREFERRED EMBODIMENT information entity. Since the encryption key is encrypted, it 

In the following description of the preferred embodiment, 30 » P** 3 * ^anyone * -access the data entity at the 

reference is made to the accompanying drawings which *»* Pf ^ » ' 

form aparthereot and whichissbownby wayof illustration *e key and packs the key and delayed retrieval 

a specific embodiment in which the invention may be description in the cryptolope. 

practiced It is to be understood that other embodiments may The details of the steps carried out in performing the 

be utilized as structural changes may be made without 35 present invention will now be presented in conjunction with 

departing from the scope of the present invention. FIG- 2 which illustrates a flow chart of the steps. 

In accordance with the present invention, the publisher 

Hardware Environment makcs an iaitial determination that a data item warrants 

FIG. 1 illustrates an exemplary hardware environment of delayed retrieval. This might be the case, for example, for 

a library network in which the present invention may be ^ large data entities, such as video, audio or software based 

practiced to provide delayed secure data retrieval. In the entities. Alternatively, a publisher may decide that all data 

exemplary environment, a content or library server 102, entities are to be transmitted via delayed retrieval, 

typically a workstation, is maintained at a publisher. The m either case, for each data entity to be retrieved in a 

server 102 maintains control of data entities, which are delayed fashion, a content encryption key is randomly 

stored in stores 104 and manages distribution of the entities. 45 selected in Step 202. The content key may then be used to 

For example, the server may act as an access control encrypt the data entity, where a hash algorithm is applied to 

enforcement manager for enforcing access control of the me result of the encryption. This allows the end user, at some 

data entities stored in stores 104 and determining when later point, to determine if the data has been altered, to verify 

access conditions have been met. Access control may authenticity of the data entity. 

involve verification that terms and conditions have been 50 toc content key is itself encrypted using the public 

met. The information entity player 106 provides an interface key o{ a publisher's server ( ca Ued the clearance center) for 

between the end user or client entity 108, which may also be validating terms and conditions for accessing the data entity 

a workstation, and the content server 102. Information entity m glep 2 Q4 r Once this is done, the publisher builds an 

player 106 further manages information entities, e.g. information entity 302 in Step 206, as shown in FIG. 2, using 

cryptolopes, received from and sent to the server 102. 55 an m f ormat ion entity builder which resides on the content 

The library network of FIG. 1 may generally be imple- server 102, illustrated in FIG. 1. Returning to FIG. 3, the 

mented with a mixture of operating systems, communication information entity contains the following items. First is the 

subsystems, database management subsystems, file servers encrypted content encryption key 304, encrypted by the 

and other hardware and software components. public key of the publisher's clearance center. The public 

The present invention may also be viewed as a set of so key is used to encrypt the content key so that only the 

computer programs executable on one or more electronic clearance center can decrypt the content key using its private 

digital computers to provide delayed secure data retrieval. key. This prevents unauthorized access to the content key, 

The computer programs may be tangibly embodied in a and thus, to the data entity itself. Second, the information 

computer-readable medium, e.g. one or more of the stores entity also contains a delayed retrieval description 306. The 

104 or the information entity player 106. 65 delayed retrieval description provides information regarding 

Thus, the present invention may be implemented as a where the data entity is stored in the publisher's store, 104 

method, apparatus, or article of manufacture for delayed in FIG. 1, and which program is to be used to handle 
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retrieval of the data entity. The delayed retrieval description 
also contains a copy of the content key, encrypted by the 
public key of the publisher's content server. The delayed 
retrieval description is digitally signed, as evidenced by a 
digital signature 308, using the publisher's private key to 
form a message digest. This can then be used by the 
publisher at a later time to validate content when the data is 
retrieved. Finally, the information entity contains a Univer- 
sal Resource Locator (URL) 310 which is used later to locate 
the publisher's content server. 

The information entity is then sent from the content server 
to the end user in Step 208 and may be opened by the 
information entity player, 106 in FIG. 1, which resides on an 
end user's machine. The information entity player 106 has a 



6 

Conclusion 



This concludes the description of the preferred embodi- 
ment of the invention. The following describes some alter- 
native embodiments for accomplishing the present inven- 
tion. For example, any type of computer, such as a 
mainframe, minicomputer, or personal computer, or com- 
puter configuration, such as a timesharing mainframe, local 
area network, or standalone personal computer, could be 
used with the present invention. 

In summary, the present invention discloses a method, 
apparatus, and article of manufacture for a computer- 
implemented for delayed secure data retrieval. 

The foregoing description of the preferred embodiment of 
the invention has been presented for the purposes of illus- 



25 



built in viewer that allows the user to navigate the content of » description It is not intended to be exhaustive or 

the information entity. If the user is interested in obtaining 
the data entity associated with the information entity, a 
request is issued to the information entity player in Step 210, 
which in turn, sends the delayed information in the infor- 

mation entity along with a retrieval request to the content 20 What Jc ic . 
server pointed to by the URL in Step 212. 

The content server authenticates the request by examining 
the message digest of the delayed retrieval description in the 
information entity, by using the publisher's public key, to 
ensure the delayed retrieval description has not been tam- 
pered with and to prevent unauthorized access to the data 
entity. 

The content server then uses the publisher's private key to 
decrypt the content key. Further, the content server uses the 3Q 
information entity's delayed retrieval description to retrieve 
the requested data entity from the stores in Step 214. 
Subsequently, the content key is used to encrypt the data 
item again. 

This scheme guarantees that the retrieval request can be 35 
authenticated. Also, since only the publisher knows the 
content key, the end user cannot unlock the content in any 
unintended way. In particular, when sending a retrieval 
request to a content server, the user cannot just pick a 
content key to get a free copy of the data item. Further, the 40 
publisher does not need a database for content key 
management, since the key and the retrieval information are 
stored together in the cryptolope. This eases content delivery 
management. 

Within the cryptolope, content key is separately encrypted 45 
by a holding key, which in turn is encrypted by a clearance 
center's public key when the cryptolope is packed. Thus, 
only the clearance center's private key is capable of unlock- 
ing the holding key and thus, unlocking the content key, and 

eventually unlocking the data entity. In order for the player 50 the steps of, prior to the step of creating the information 
to unlock the data entity, the player needs to gather infor- entity, 

mation from the user, such as payment information, and then randomly selecting a content key; 

sends the information together with the terms and conditions encrypting the data entity, thereby generating a digital 

of the data entity to the clearance center. Upon approval, the signature; 

clearance center sends the unlocked content key to the 55 encrypting the content key, thereby creating an encrypted 
player to unlock the data entity. These subsequent process- 
ing steps are well known and need not be discussed in 
further detail. 

The clearance center may reside on a machine hosted by 



to limit the invention to the precise form disclosed. Many 
modifications and variations are possible in light of the 
above teaching. It is intended that the scope of the invention 
be limited not by this detailed description, but rather by the 



What is claimed is: 

1. A method for securely retrieving a data entity over a 
network system having a content server, a store and a client, 
the method comprising the steps of: 

creating an information entity at the content server, the 
information entity containing a delayed retrieval 
description, for retrieving the data entity, and content 
server location information; 

sending the information entity to the client; 

detecting when the information entity has been opened at 
the client; transmitting the delayed retrieval description 
within a retrieval request back to the content server, in 
accordance with the content server location 
information, when the client desires access to the data 
entity; 

retrieving the data entity from the store in accordance 

with the delayed retrieval description; 
encrypting the data entity in accordance with a content 

key stored in the delayed retrieval description; and 
sending the data entity to the client. 

2. The method according to claim 1, wherein the delayed 
retrieval description contains: 

information regarding a location of the data entity in the 
store; and 

information regarding how to retrieve the data entity. 

3. The method according to claim 1, wherein the content 
server location information comprises a universal resource 
locator (URL), identifying the location of the content server. 

4. The method according to claim 1, further comprising 



content key; and after the step of creating the informa- 
tion entity, storing the encrypted content key in the 
information entity. 
5. The method according to claim 1, wherein the delayed 



the publisher, i.e. on the content server, or a third party. The 60 retrieval description is digitally signed, thereby allowing the 



clearance center processes the requests sent from the infor- 
mation entity player and instructs the information entity 
player on how to open the information entity. It is quite 
expensive to host a clearance center with credit card 
payment, for example. That is one of the reasons why a 65 
clearance center is sometimes hosted by a party other than 
the publisher itself. 



content server to authenticate the retrieval request. 

6. The method according to claim 1, further comprising 
the steps of: 
during the creating the information entity step: 
encrypting the content key with a holding key, the 
content key having been used to encrypt the data 
entity a first time; and 
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encrypting the holding key with a clearance center 

public key; and 
after the step of sending the data entity to the client: 
providing information from the client to the clearance 

center to satisfy terms and conditions for accessing 

the data entity; and 
providing to the client a decrypted holding key when 

the terms and conditions are satisfied, the decrypted 

holding key being used to decrypt the encrypted 

content key at the client to thereby decrypt the data 

entity. 

7. An apparatus for securely retrieving a data entity over 
a network, the apparatus comprising: 

a) a content server, which creates an information entity, 
the information entity containing a delayed retrieval 
description for retrieving the data entity and content 
server location information; and 

b) an information entity player, associated with a client, 
wherein the information player receives the informa- 
tion entity from the content server; 

wherein the information player opens the information 
entity; 

wherein the information entity player sends the delayed 
retrieval description within a retrieval request back to 
the content server, in accordance with the content 
server location information when the client desires 
access to the data entity; 

wherein the content server retrieves the data entity from 
the store in accordance with the delayed retrieval 
description; 

wherein, the content server encrypts the data entity in 
accordance with a content key stored in the delayed 
retrieval description; and 

wherein the content server sends the data entity to the 
client. 

8. The apparatus according to claim 7, wherein the 
delayed retrieval description contains: 

information regarding a location of the data entity in the 
store; and 

information regarding how to retrieve the data entity. 

9. The apparatus according to claim 7, wherein the content 
server location information comprises a universal resource 
locator (URL), identifying the location of the content server. 

10. The apparatus according to claim 7, wherein the 
content server further randomly selects a content key, 
encrypts the data entity, thereby generating a digital 
signature, encrypts the content key, thereby creating an 
encrypted content key, and stores the encrypted content key 
in the information entity. 

11. The apparatus according to claim 7, wherein the 
delayed retrieval description is digitally signed, thereby 
allowing the content server to authenticate the retrieval 
request 

12. The apparatus according to claim 7, further compris- 
ing a clearance center, wherein the information entity further 
contains the content key encrypted by a holding key, the 

' content key having been used to encrypt the data entity a first 
time, and the information entity further contains the holding 
key encrypted by a clearance center public key; 

wherein after the content server sends the data entity to 
the client, the client provides information to the clear- 
ance center to satisfy terms and conditions for access- 
ing the data entity; and 
wherein the clearance center provides a decrypted holding 
key to the client when the terms and conditions are 
satisfied, the decrypted content key being used to 
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decrypt the content key to thereby decrypt the data 
entity sent to the client. 

13. An article of manufacture comprising a program 
storage device readable by a computer and tangibly embody- 

5 ing one or more programs of instructions executable by the 
computer to perform method steps for securely retrieving a 
data entity over a network system having a content server, a 
store and a client, the method comprising the steps of: 
creating an information entity at the content server, the 
10 information entity containing a delayed retrieval 
description for retrieving the data entity and content 
server location information; 
sending the information entity to the client; 
detecting when the information entity has been opened at 
15 the client; 

transmitting the delayed retrieval description within a 
retrieval request back to the content server, in accor- 
dance with the content server location information, 
when the client desires access to the data entity; 
20 retrieving the data entity from the store in accordance 
with the delayed retrieval description; 
encrypting the data entity in accordance with a content 
key stored in the delayed retrieval description; and 
25 sending the data entity to the client. 

14. The article of manufacture according to claim 13, 
wherein the delayed retrieval description contains: 

information regarding a location of the data entity in the 
store; and 

30 information regarding how to retrieve the data entity. 

15. The article of manufacture according to claim 13, 
wherein the content server location information comprises a 
universal resource locator (URL), identifying the location of 
the content server. 

35 16. The article of manufacture according to claim 13, 
wherein the method further comprises the steps of, prior to 
the step of creating the information entity, 
randomly selecting a content key; 
encrypting the data entity, thereby generating a digital 
40 signature; 

encrypting the content key, thereby creating an encrypted 

content key; and 
after the step of creating the information entity, storing the 
encrypted content key in the information entity. 
45 17. The article of manufacture according to claim 13, 
wherein the delayed retrieval description is digitally signed, 
thereby allowing the content server to authenticate the 
retrieval request. 

18. The article of manufacture according to claim 13, 
50 wherein the method further comprises the steps of: 
during the creating the information entity step: 

encrypting the content key with a holding key, the 
content key having been used to encrypt the data 
entity, a first time; and 
55 encrypting the holding key with a clearance center 
public key; and after the step of sending the data 
entity to the client: 

providing information from the client to the clear- 
ance center to satisfy terms and conditions for 
60 accessing the data entity; and 

providing to the client a decrypted holding key when 
the terms and conditions are satisfied, the 
decrypted holding key being used to decrypt the 
encrypted content key at the client to thereby 
65 decrypt the data entity. 

***** 



07/09/2003, EAST Version: 1.03.0002 



